package com.adopapa.nezhacloud.authc.utils;

import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;

import com.adopapa.nezhacloud.common.SecurityConstants;
import com.adopapa.nezhacloud.common.Tools;

import jakarta.servlet.http.HttpServletRequest;

/**
 * 权限获取工具类
 */
public final class SecurityUtils {
	/**
	 * 获取用户ID
	 */
	public static String getUserId(HttpServletRequest request) {
		return request.getHeader(SecurityConstants.USER_ID);
	}

	/**
	 * 获取用户名称
	 */
	public static String getUserName(HttpServletRequest request) {
		return request.getHeader(SecurityConstants.USER_NAME);
	}

	/**
	 * 获取用户key
	 */
	public static String getUserKey(HttpServletRequest request) {
		return request.getHeader(SecurityConstants.USER_KEY);
	}

	/**
	 * 获取登录用户信息
	 */
//	public static LoginUser getLoginUser() {
//		return SecurityContextHolder.get(SecurityConstants.LOGIN_USER, LoginUser.class);
//	}


	/**
	 * 根据request获取请求token
	 */
	public static String getToken(HttpServletRequest request) {
		// 从header获取token标识
		String token = request.getHeader(SecurityConstants.AUTHORIZATION_HEADER);
		return replaceTokenPrefix(token);
	}

	/**
	 * 裁剪token前缀
	 */
	public static String replaceTokenPrefix(String token) {
		// 如果前端设置了令牌前缀，则裁剪掉前缀
		if (!Tools.empty(token) && token.startsWith(JwtUtils.PREFIX)) {
			token = token.replaceFirst(JwtUtils.PREFIX, "");
		}
		return token;
	}

	/**
	 * 是否为管理员
	 * 
	 * @param userId 用户ID
	 * @return 结果
	 */
	public static boolean isAdmin(Long userId) {
		return userId != null && 1L == userId;
	}

	/**
	 * 生成BCryptPasswordEncoder密码
	 *
	 * @param password 密码
	 * @return 加密字符串
	 */
	public static String encryptPassword(String password) {
		BCryptPasswordEncoder passwordEncoder = new BCryptPasswordEncoder();
		return passwordEncoder.encode(password);
	}

	/**
	 * 判断密码是否相同
	 *
	 * @param rawPassword     真实密码
	 * @param encodedPassword 加密后字符
	 * @return 结果
	 */
	public static boolean matchesPassword(String rawPassword, String encodedPassword) {
		BCryptPasswordEncoder passwordEncoder = new BCryptPasswordEncoder();
		return passwordEncoder.matches(rawPassword, encodedPassword);
	}
}
